MASE Data Security Auditing and Compliance Software for RACF
|
MASE is a security compliance system that performs a thorough audit on IBM Mainframes running zOS (MVS) and RACF. MASE produces a fully automated security scorecard that reports deviations from installation specific security standards and IBM best practices. MASE reports on all the important RACF security system parameters, profiles and privileges. MASE makes RACF reporting easy while assuring that MVS System integrity is maintained.
MASE uses the operating system's existing features and exploits IBM's reporting mechanisms for Resource Access Control Facility (RACF) to perform a thorough security and integrity analysis in minutes rather than days. The result is improved security and system integrity for the installation. Many installations use MASE to perform a daily self-audit that assures that RACF is protecting vital system resources and is controling what users can do on the operating system.
MASE also assures that the installation easily meets internal and external auditing requirements. MASE is often used to assure Sarbanes-Oxley compliance.
|
 With MASE the cost of zOS installation security reporting and compliance is reduced while integrity is increased.
|
MASE is split into mainframe and server processes. The mainframe process periodically captures information regarding access protection and system integrity for each RACF database and each MVS image. This information is sent from each mainframe to the MASE/zOS Server. The MASE Server stores the information and evaluates it based on a set of installation specific standards. The MASE server triggers a discrepancy whenever there is a difference between the installation specific standard and the actual security parameter or privilege on the mainframe. MASE also reports on deviations from IBM best practices. The Windows based MASE client software makes discrepancies easy to review with all data easily available in Excel for custom analysis.
MASE is a proven solution that can handle the largest IBM Mainframe installations with multiple RACF databases and MVS systems. |
|
